$ rpki-client -vvf rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft File: IkB3DhUcdBqE3pTijHUgArg5--0.mft (raw, json) Hash identifier: m5ftN/Px3plvGs7pII6bijU0pFst3jpZt5ob1kBRdx4= Subject key identifier: 63:B5:CD:C4:0D:2A:59:26:FC:0B:CD:11:B0:1C:3B:A0:67:B7:6C:41 Authority key identifier: 22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED Certificate issuer: /CN=A91A665A/serialNumber=2240770E151C741A84DE94E28C752002B839FBED Certificate serial: 075A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft Manifest number: 074F Signing time: Thu 12 Jun 2025 21:39:53 +0000 Manifest this update: Thu 12 Jun 2025 21:39:53 +0000 Manifest next update: Thu 19 Jun 2025 21:39:53 +0000 Files and hashes: 1: IkB3DhUcdBqE3pTijHUgArg5--0.crl (hash: iATLohB7MZiCJkj+XDF8tXvhr1LjEk2lhai65H/LqVk=) 2: 05E355AEA03811EDBC101B49C4F9AE02.roa (hash: CNZBv4FK9ZWvTtzm+cWIR1zfUXJg63OkryMkTZVFNpg=) 3: 8224075A293711EB9DE16C62C4F9AE02.roa (hash: BlNMvykSVEqNeWKjQSI6MISWgcMVQUYKsr+oWp8+db0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 21:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A665A, serialNumber=2240770E151C741A84DE94E28C752002B839FBED Validity Not Before: Jun 12 21:39:53 2025 GMT Not After : Jun 19 21:39:53 2025 GMT Subject: CN=684b4929-302e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:18:db:b0:7a:da:85:95:a8:3e:52:41:e1:41: 9a:ab:0d:a0:d4:49:98:98:d4:ec:47:fe:b0:2c:46: c6:9b:70:b7:fb:a0:3f:dd:00:d0:e6:e9:09:ed:2f: c9:1c:ef:7c:12:79:bf:d4:1d:e9:76:2e:1b:11:9c: af:29:e9:10:fc:67:89:a9:5b:70:bc:ef:75:81:c3: 3a:cb:f5:ae:2b:2c:38:71:5e:96:32:cd:23:dd:c8: 0f:3e:ef:dc:95:2e:9f:29:37:e3:3b:65:47:66:33: ce:77:62:7f:08:e1:10:4b:47:c5:04:ae:98:66:34: 84:bf:a6:34:bb:02:b5:1c:6e:97:07:9c:e3:57:0d: 5f:20:c4:ee:67:f6:fd:34:fc:33:cd:30:1c:5d:ed: 04:61:ec:4e:48:d0:41:0a:db:e4:a0:29:fd:ab:86: 1a:0f:0d:38:d1:c1:a3:82:01:7b:65:46:af:1d:91: e7:b2:98:1f:a8:fc:87:7a:d8:91:a9:bb:32:ba:4c: 72:9c:5c:84:3a:88:23:24:be:79:72:70:e4:cf:78: d3:b1:d5:75:22:89:84:6d:b3:f2:31:8b:b1:b8:cc: 71:83:21:1d:06:71:e6:8c:80:05:60:a3:3d:6b:e8: 00:79:0e:a4:7d:f7:2d:5e:9e:0c:59:cd:34:74:46: 33:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B5:CD:C4:0D:2A:59:26:FC:0B:CD:11:B0:1C:3B:A0:67:B7:6C:41 X509v3 Authority Key Identifier: keyid:22:40:77:0E:15:1C:74:1A:84:DE:94:E2:8C:75:20:02:B8:39:FB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IkB3DhUcdBqE3pTijHUgArg5--0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A665A/C8FAD138293511EBAE725E61C4F9AE02/IkB3DhUcdBqE3pTijHUgArg5--0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:57:1b:37:73:73:44:3f:91:b9:06:a5:9b:a4:3a:b7:49:5c: bc:4b:42:4d:4d:f9:76:3d:65:8f:91:aa:1a:e6:a9:00:28:b7: ae:d4:90:83:62:9a:66:16:f2:1d:20:c9:fa:55:8d:fd:df:50: 71:27:a8:80:51:5c:61:c1:22:a3:ff:61:35:00:9e:cc:2f:fd: ff:b6:9a:90:be:01:35:ff:20:dc:ea:d7:53:dc:0a:9b:03:6a: fd:e9:fb:c3:ee:d8:ac:5e:b8:f3:bd:78:72:57:0b:73:d6:e3: bb:58:03:a0:f6:2b:56:8b:5d:52:b1:a0:c0:e2:37:7a:9c:42: 7b:73:65:35:60:b0:7d:df:ff:d3:54:6a:8b:f9:30:19:d6:63: aa:c3:ce:92:c1:30:04:69:3f:a2:3d:86:2c:32:df:3b:7e:60: 5b:6f:78:c9:38:83:0b:31:ca:7b:6e:86:b5:fe:df:9b:84:02: 27:aa:6f:af:91:24:5b:97:9f:56:5b:44:7b:d2:c5:65:d1:fe: 15:f2:21:08:c3:09:69:0c:30:5f:e1:6a:74:68:10:a7:0f:e7: 23:8b:a4:4d:e7:b4:57:4a:ca:8a:2d:1c:d1:9d:74:54:08:a1: c0:59:a3:3c:58:f5:ce:ff:63:b3:0a:97:63:04:35:a9:db:5e: fe:62:b4:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY2NUExMTAvBgNVBAUTKDIyNDA3NzBFMTUxQzc0MUE4NERFOTRFMjhDNzUyMDAy QjgzOUZCRUQwHhcNMjUwNjEyMjEzOTUzWhcNMjUwNjE5MjEzOTUzWjAYMRYwFAYD VQQDEw02ODRiNDkyOS0zMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hjbsHrahZWoPlJB4UGaqw2g1EmYmNTsR/6wLEbGm3C3+6A/3QDQ5ukJ7S/J HO98Enm/1B3pdi4bEZyvKekQ/GeJqVtwvO91gcM6y/WuKyw4cV6WMs0j3cgPPu/c lS6fKTfjO2VHZjPOd2J/COEQS0fFBK6YZjSEv6Y0uwK1HG6XB5zjVw1fIMTuZ/b9 NPwzzTAcXe0EYexOSNBBCtvkoCn9q4YaDw040cGjggF7ZUavHZHnspgfqPyHetiR qbsyukxynFyEOogjJL55cnDkz3jTsdV1IomEbbPyMYuxuMxxgyEdBnHmjIAFYKM9 a+gAeQ6kffctXp4MWc00dEYzqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGO1zcQN Klkm/AvNEbAcO6Bnt2xBMB8GA1UdIwQYMBaAFCJAdw4VHHQahN6U4ox1IAK4Ofvt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjY1QS9DOEZBRDEzODI5 MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RCcUUzcFRpakhVZ0FyZzUt LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lrQjNEaFVjZEJxRTNwVGlqSFVnQXJnNS0tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NjY1QS9DOEZBRDEzODI5MzUxMUVCQUU3MjVFNjFDNEY5QUUwMi9Ja0IzRGhVY2RC cUUzcFRpakhVZ0FyZzUtLTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsVxs3c3NEP5G5BqWbpDq3SVy8S0JNTfl2PWWPkaoa5qkAKLeu1JCD YppmFvIdIMn6VY3931BxJ6iAUVxhwSKj/2E1AJ7ML/3/tpqQvgE1/yDc6tdT3Aqb A2r96fvD7tisXrjzvXhyVwtz1uO7WAOg9itWi11SsaDA4jd6nEJ7c2U1YLB93//T VGqL+TAZ1mOqw86SwTAEaT+iPYYsMt87fmBbb3jJOIMLMcp7boa1/t+bhAInqm+v kSRbl59WW0R70sVl0f4V8iEIwwlpDDBf4Wp0aBCnD+cji6RN57RXSsqKLRzRnXRU CKHAWaM8WPXO/2OzCpdjBDWp217+YrTI -----END CERTIFICATE-----Generated at Sat Jun 14 19:28:20 2025 by rpki-client